Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D245F227C1C11F0A3AA7ED3DAE4EC9C.roa
File: 4D245F227C1C11F0A3AA7ED3DAE4EC9C.roa (raw, json)
Hash identifier: FCnRT06KDw1Et8ECVU3pIp2XXA8tQb4vQISVuwe1vrc=
Subject key identifier: AB:7E:59:5C:13:9B:08:5E:1B:7E:C2:55:5B:56:FF:71:C0:E9:CC:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016BCA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D245F227C1C11F0A3AA7ED3DAE4EC9C.roa
Signing time: Mon 18 Aug 2025 10:15:45 +0000
ROA not before: Mon 18 Aug 2025 10:15:40 +0000
ROA not after: Thu 25 Sep 2025 10:15:40 +0000
asID: 2914
IP address blocks: 45.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Aug 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93130 (0x16bca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 18 10:15:40 2025 GMT
Not After : Sep 25 10:15:40 2025 GMT
Subject: CN=68a2fd51-df29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7a:77:d0:7e:b1:4f:7a:64:bc:92:1c:ea:51:
11:39:3b:23:c2:f8:26:3b:34:25:5b:d0:7a:cb:41:
43:6f:95:6a:d4:cc:c7:3e:a3:cb:0d:34:d1:60:7e:
fb:e6:66:ce:e5:4b:30:85:50:0a:4f:0e:dc:de:b8:
43:e7:b0:15:70:3a:bf:82:2c:b3:d1:25:14:ac:1a:
b9:8a:92:06:1f:d0:c6:97:8e:84:5c:7c:ba:1c:68:
78:05:59:b4:db:a2:4b:7d:c7:a4:9f:8f:71:e3:22:
0f:af:1d:da:08:27:89:99:5e:37:1e:5c:5f:fe:3d:
70:a3:8d:b0:06:aa:5b:ac:b3:df:01:80:85:f9:33:
7b:6a:91:86:ea:a4:60:91:f7:58:5c:8a:c7:ca:fb:
ab:bd:92:2e:44:b5:74:fc:97:a9:fe:4d:94:d5:7a:
b3:fd:56:10:5e:d6:f7:67:7c:0f:43:51:01:60:af:
de:04:86:d6:1d:97:74:22:4a:5c:de:be:dd:01:95:
11:07:cd:55:f2:65:ad:d2:8a:8c:20:d1:9e:24:19:
49:68:40:80:1e:3f:95:11:10:f4:33:6b:8a:9f:ab:
ca:16:34:17:cf:70:d6:b3:01:20:67:c6:43:af:8f:
a6:1d:f2:fd:58:a5:db:bb:26:b4:6d:c0:dd:85:2d:
e9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7E:59:5C:13:9B:08:5E:1B:7E:C2:55:5B:56:FF:71:C0:E9:CC:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D245F227C1C11F0A3AA7ED3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:df:21:a9:4f:39:1c:b9:77:a8:06:68:ef:c7:23:fd:35:f9:
f0:32:76:55:09:c4:87:46:ec:ea:4b:31:c1:ff:e5:b2:97:de:
4a:48:6f:35:1d:90:52:8a:ae:80:12:47:91:dd:69:7b:cd:bf:
00:18:ec:18:7f:1b:e2:f1:dc:ad:60:23:f1:77:af:34:23:09:
56:48:7f:f0:eb:2b:e3:c9:89:74:d2:7a:7b:f4:2b:67:63:c4:
0f:84:89:ac:82:4f:a9:b1:2d:bc:25:1d:8a:8e:33:d6:e8:7c:
03:6a:95:84:4d:c1:bd:03:b9:e1:33:65:b6:64:a7:e0:0c:30:
e2:2b:49:fd:4b:03:09:cf:25:bf:50:9b:83:57:28:fd:70:0e:
e4:98:5e:b7:23:01:46:27:63:4d:e3:8a:7c:3d:09:62:b9:bc:
47:b4:e6:c4:06:ce:54:73:ae:00:14:a9:1e:8d:e4:78:d6:31:
62:4f:61:1e:97:46:a0:6e:76:b4:4c:5b:09:88:e5:f0:55:75:
29:88:e8:42:11:8b:1d:0e:22:06:64:53:7d:a6:ae:92:90:ca:
6f:bf:75:34:64:64:b1:c0:a6:37:02:e9:ad:da:57:6c:e4:a0:
c9:72:64:ea:eb:8d:9a:ff:9b:a7:9e:7f:a5:be:ff:0a:8d:63:
06:8e:c8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 10:48:26 2025 by rpki-client